Major Breach of Somalia’s Online Visa System Exposes Data of Thousands, Including Americans
MOGADISHU – A significant cybersecurity breach in Somalia’s online visa platform may have compromised the sensitive personal information of more than 35,000 individuals, including American citizens, according to a security alert from the US embassy in Mogadishu.
The breach, which targeted the official e-visa website (evisa.gov.so), is believed to have allowed hackers to access and leak a trove of applicant data. The exposed information reportedly includes names, photographs, dates of birth, marital status, physical addresses, and email addresses.
The US embassy publicly disclosed the incident, warning that the personal data of travelers who used the system had been exposed. The United Kingdom has also issued a travel advisory, characterizing the breach as “ongoing” and urging travelers to exercise caution.
“The US Embassy is aware of a reported compromise of the Somali eVisa system, which may have exposed the personal information of more than 35,000 individuals, including US citizens,” the embassy’s alert stated.
The Somali government has not yet made an official public comment on the security incident. However, in a move that has drawn further attention, the authorities have quietly migrated the country’s visa application service from the compromised “evisa.gov.so” domain to a new website, “etas.gov.so,” without providing an explanation for the change.
The incident raises serious concerns about data privacy and the security of government digital services in the region, highlighting the risks for international travelers and the potential for targeted phishing attacks using the leaked information. Cybersecurity experts advise individuals who have recently applied for a Somali visa to monitor their accounts for suspicious activity.
About The Author
